Mythic MCP

by xpn

Mythic MCP

A quick MCP demo for Mythic, allowing LLMs to pentest on our behalf!

Requirements

  1. uv
  2. python3
  3. Claude Desktop (or other MCP Client)

Usage with Claude Desktop

To deploy this MCP Server with Claude Desktop, you'll need to edit your claude_desktop_config.json to add the following:

{ "mcpServers": { "mythic_mcp": { "command": "/Users/xpn/.local/bin/uv", "args": [ "--directory", "/full/path/to/mythic_mcp/", "run", "main.py", "mythic_admin", "mythic_admin_password", "localhost", "7443" ] } } }

Once done, kick off Claude Desktop. There are sample prompts to show how to task the LLM, but really anything will work along the lines of:

You are an automated pentester, tasked with emulating a specific threat actor. The threat actor is APT31. Your objective is: Add a flag to C:\win.txt on DC01. Perform any required steps to meet the objective, using only techniques documented by the threat actor.
-
security - not tested
F
license - not found
-
quality - not tested

local-only server

The server can only run on the client's local machine because it depends on local resources.

A demonstration server that allows large language models to perform penetration testing tasks autonomously by interfacing with the Mythic C2 framework.

  1. Requirements
    1. Usage with Claude Desktop

      Related MCP Servers

      • A
        security
        A
        license
        A
        quality
        A server that integrates Locust load testing capabilities with AI-powered development environments, allowing users to run performance tests through natural language commands.
        Last updated -
        1
        1
        Python
        MIT License
      • A
        security
        F
        license
        A
        quality
        A Model Context Protocol server that allows AI assistants to execute and manage JMeter performance tests through natural language commands.
        Last updated -
        2
        10
        Python
      • A
        security
        F
        license
        A
        quality
        A Model Context Protocol server that integrates essential penetration testing tools (Nmap, Gobuster, Nikto, John the Ripper) into a unified natural language interface, allowing security professionals to execute and chain multiple tools through conversational commands.
        Last updated -
        8
        1
        TypeScript
        • Linux
        • Apple
      • A
        security
        A
        license
        A
        quality
        QA Sphere MCP server that enables Large Language Models to interact directly with test management system test cases, supporting AI-powered development workflows and test case discovery.
        Last updated -
        6
        52
        8
        JavaScript
        MIT License

      View all related MCP servers

      ID: 37xql1svqr